fcb91f1e56
Probably because of a new version of docker-ce package apparmor is not installed by default anymore and containers can't start because of apparmor_parser is missing. This patch is adding apparmor package to list of packages to be installed. Closes-Bug: #2004583 Depends-on: https://review.opendev.org/c/openstack/kolla-ansible/+/872558 Change-Id: I4855a9ea896f30575b924a45f020c23a2e780f4b
55 lines
2.0 KiB
YAML
55 lines
2.0 KiB
YAML
---
|
|
# APT cache TTL in seconds.
|
|
apt_cache_valid_time: 3600
|
|
|
|
# Whether to enable a package repository for Docker.
|
|
enable_docker_repo: "{% if ansible_facts.distribution == 'openEuler' %}false{% else %}true{% endif %}"
|
|
|
|
# Docker APT repository configuration.
|
|
docker_apt_url: "https://download.docker.com/linux/{{ ansible_facts.distribution | lower }}"
|
|
docker_apt_repo: "deb {{ docker_apt_url }} {{ ansible_facts.distribution_release }} stable"
|
|
docker_apt_key_file: "gpg"
|
|
docker_apt_key_id: "0EBFCD88"
|
|
docker_apt_package: "docker-ce"
|
|
|
|
# Docker Yum repository configuration.
|
|
docker_yum_url: "https://download.docker.com/linux/centos"
|
|
docker_yum_baseurl: "{{ docker_yum_url }}/$releasever/$basearch/stable"
|
|
docker_yum_gpgkey: "{{ docker_yum_url }}/gpg"
|
|
docker_yum_gpgcheck: true
|
|
docker_yum_package: "{% if ansible_facts.distribution == 'openEuler' %}docker{% else %}docker-ce{% endif %}"
|
|
|
|
# List of packages to install.
|
|
docker_packages:
|
|
- "{{ docker_apt_package if ansible_facts.os_family == 'Debian' else docker_yum_package }}"
|
|
- "{% if ansible_facts.os_family == 'Debian' %}apparmor{% endif %}"
|
|
- "{% if not docker_disable_default_iptables_rules | bool %}iptables{% endif %}"
|
|
|
|
docker_storage_driver: ""
|
|
docker_custom_config: "{% if ansible_facts.distribution == 'openEuler' %}{\"exec-opts\": [\"native.umask=normal\"]}{% else %}{}{% endif %}"
|
|
|
|
docker_http_proxy: ""
|
|
docker_https_proxy: ""
|
|
docker_no_proxy: ""
|
|
|
|
docker_log_max_file: "5"
|
|
docker_log_max_size: "50m"
|
|
|
|
# Docker networking options
|
|
docker_disable_default_iptables_rules: "yes"
|
|
docker_disable_default_network: "{{ docker_disable_default_iptables_rules }}"
|
|
docker_disable_ip_forward: "{{ docker_disable_default_iptables_rules }}"
|
|
|
|
docker_runtime_directory: ""
|
|
|
|
# URL of docker registry
|
|
docker_registry:
|
|
docker_registry_insecure: false
|
|
|
|
# Path to a CA file for Docker registry
|
|
docker_registry_ca:
|
|
|
|
# Whether to configure Docker and containerd for Zun.
|
|
docker_configure_for_zun: false
|
|
containerd_configure_for_zun: "{{ docker_configure_for_zun | bool }}"
|